$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/11b08533-7e4f-4dde-8f78-bb8fa0cbe278.roa File: 11b08533-7e4f-4dde-8f78-bb8fa0cbe278.roa (raw, json) Hash identifier: 2mbuhlzLERtMRCvlXukqkXS38yx8NO4IdG0e/ptP1LA= Subject key identifier: D9:D1:4D:28:ED:35:37:7F:D3:00:B7:CB:5B:57:D1:FD:B1:69:35:7E Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 7D93693D2960F49D588E6E3759FCDFDED5BFC2D7 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/11b08533-7e4f-4dde-8f78-bb8fa0cbe278.roa Signing time: Sat 10 May 2025 00:50:20 +0000 ROA not before: Sat 10 May 2025 00:50:20 +0000 ROA not after: Sat 14 Jun 2025 23:59:59 +0000 asID: 801 IP address blocks: 35.96.244.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 13 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:93:69:3d:29:60:f4:9d:58:8e:6e:37:59:fc:df:de:d5:bf:c2:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: May 10 00:50:20 2025 GMT Not After : Jun 14 23:59:59 2025 GMT Subject: serialNumber=78ed087ba9bf4f17d3149f943441cfafdb4ae7a8db4c9e86934d6e55071f3e0d, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:54:0b:bf:ae:f8:80:28:d3:31:f5:02:71:26: 15:c5:c3:a1:34:36:ff:6d:34:42:5c:c9:51:f7:52: 55:bf:36:e7:74:3c:61:27:4e:b2:cf:0b:e9:ac:7c: c4:27:9e:fd:55:07:c6:39:e5:15:4a:c1:7e:f5:42: 94:08:a7:c0:54:2a:0a:f6:4d:37:ca:fc:67:60:b5: 14:79:33:88:55:47:4c:e4:2b:e7:6a:fc:08:bf:07: 1f:e7:a6:c2:11:c3:08:94:04:4a:28:5b:b0:85:d5: c8:0b:8f:1d:96:0d:e1:34:6a:e7:81:9a:24:c5:43: a0:50:59:00:d1:1c:e0:6e:59:e0:a5:92:22:b0:ee: 67:eb:f6:67:ef:47:cc:b4:5d:e6:d2:ee:5c:db:77: 18:ba:91:4c:24:d3:c5:84:22:ad:26:c3:20:9f:4b: a1:2e:8b:ca:e8:87:11:be:19:e0:c4:fc:5e:0d:c4: e9:c5:2f:d4:e7:c0:cb:ee:c4:cc:3f:e9:5f:68:91: 58:fe:4b:1f:2f:50:35:a0:76:83:e2:da:1b:f5:66: 99:3f:e5:50:c2:e3:24:dc:51:e5:2f:d7:fa:57:6c: 09:e9:d7:24:46:41:95:f5:7a:29:eb:c6:87:62:d0: 11:28:ef:af:54:4c:6a:86:ef:da:f7:59:a4:cc:34: 4a:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:D1:4D:28:ED:35:37:7F:D3:00:B7:CB:5B:57:D1:FD:B1:69:35:7E X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/11b08533-7e4f-4dde-8f78-bb8fa0cbe278.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.244.0/24 Signature Algorithm: sha256WithRSAEncryption 33:33:61:eb:87:bc:8a:bf:ee:2c:b9:79:c1:ac:29:6d:4c:2c: 7f:82:72:37:f5:c5:79:66:33:89:df:a8:32:a2:17:49:89:75: 03:84:d3:08:85:3e:2e:b9:b0:41:ff:11:e0:91:3d:7d:ab:71: 70:bf:5d:c1:ff:94:a2:63:fa:a0:5b:ca:26:5a:60:5e:84:cd: 9f:c9:95:75:5c:35:50:a4:63:94:c7:70:2c:d5:7b:71:b3:b4: ee:db:ef:c4:74:cb:d9:95:43:61:9b:e8:15:be:c5:aa:58:69: 3c:b8:ea:07:ff:88:9e:ab:1f:13:8f:e4:84:d2:4d:0e:da:55: 53:ce:da:8f:59:01:65:0f:cb:1d:07:b6:a5:9a:c3:42:06:4b: 2d:db:31:ae:b7:ae:9c:6b:fb:f2:d0:62:eb:c2:bb:95:f8:df: d1:5c:61:55:a7:ff:a2:a5:17:8e:a8:b5:9c:76:76:37:57:f8: db:c0:68:62:4b:c0:af:69:2e:a9:a0:af:cf:ad:49:9e:28:5f: 24:dd:0c:a5:0e:9c:5d:eb:bf:fd:63:eb:26:a1:45:63:10:54: 07:04:97:07:e3:93:2d:cb:8c:72:8d:27:f7:f4:a2:0d:30:08: 70:09:ed:75:ed:2d:fb:13:2b:33:92:ac:0b:4c:a7:f8:5e:12: 5e:1f:25:8a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUfZNpPSlg9J1Yjm43Wfzf3tW/wtcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNTEwMDA1MDIwWhcNMjUwNjE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A3OGVkMDg3YmE5YmY0ZjE3ZDMxNDlmOTQzNDQxY2ZhZmRi NGFlN2E4ZGI0YzllODY5MzRkNmU1NTA3MWYzZTBkMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCtVAu/rviAKNMx9QJxJhXFw6E0Nv9tNEJcyVH3UlW/Nud0 PGEnTrLPC+msfMQnnv1VB8Y55RVKwX71QpQIp8BUKgr2TTfK/GdgtRR5M4hVR0zk K+dq/Ai/Bx/npsIRwwiUBEooW7CF1cgLjx2WDeE0aueBmiTFQ6BQWQDRHOBuWeCl kiKw7mfr9mfvR8y0XebS7lzbdxi6kUwk08WEIq0mwyCfS6Eui8rohxG+GeDE/F4N xOnFL9TnwMvuxMw/6V9okVj+Sx8vUDWgdoPi2hv1Zpk/5VDC4yTcUeUv1/pXbAnp 1yRGQZX1einrxodi0BEo769UTGqG79r3WaTMNErxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU2dFNKO01N3/TALfLW1fR/bFpNX4wHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzExYjA4NTMzLTdlNGYtNGRkZS04Zjc4LWJiOGZhMGNiZTI3OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYPQwDQYJKoZIhvcNAQELBQADggEBADMzYeuHvIq/7iy5ecGsKW1MLH+C cjf1xXlmM4nfqDKiF0mJdQOE0wiFPi65sEH/EeCRPX2rcXC/XcH/lKJj+qBbyiZa YF6EzZ/JlXVcNVCkY5THcCzVe3GztO7b78R0y9mVQ2Gb6BW+xapYaTy46gf/iJ6r HxOP5ITSTQ7aVVPO2o9ZAWUPyx0HtqWaw0IGSy3bMa63rpxr+/LQYuvCu5X439Fc YVWn/6KlF46otZx2djdX+NvAaGJLwK9pLqmgr8+tSZ4oXyTdDKUOnF3rv/1j6yah RWMQVAcElwfjky3LjHKNJ/f0og0wCHAJ7XXtLfsTKzOSrAtMp/heEl4fJYo= -----END CERTIFICATE-----Generated at Mon May 12 10:24:44 2025 by rpki-client